Tag: DevSecOps
-
Securing GitHub Actions Workflows with CodeQL
Enhance security in your CI/CD pipelines by securing GitHub Actions workflows with CodeQL. Learn about CodeQL’s features, setup, advanced practices, and integrations to protect against vulnerabilities.
Rethinking Security: VMs vs. Containers in the Cloud Native Era
Explore the nuanced debate of VMs vs containers security in the cloud-native era. Learn about attack surfaces, Kubernetes boundaries, myths, and emerging technologies like WASM.
Real-Time Security Observability with Tetragon in Kubernetes
Tetragon, an eBPF-based tool, enhances security observability and enforcement in Kubernetes clusters. It provides real-time monitoring and runtime security enforcement, capturing process, file, and network activities at kernel level. It’s crucial for detecting and preventing security breaches, ensuring compliance, and offering granular control. Following best practices in deployment and leveraging…